VPN server on FreeBSD. Which one to choose in 2025?

A

Alexandr Kirilov

Hello!

Trying to find any self hosted VPN solution for using for private (corporate) purpose. Which to choose in 2025?
Is there ant that using SSH protocol? Or stealth (HTTPS-like) protocol?
 
This looks like a query better suited for chatgpt than forums.
 
Here is a decent video of a lad testing the common VPN software on Linux. Wireguard is near the top. I've been using Wireguard for laptop and Android cell road-warrior use and Point-to-Point network gateways. Not terrible to configure, performs great, and stable even on bad wifi/cell networks where OpenVPN falls flat on it's face.
 
I can't help but wonder if OP is one of those users who is under the impression that the use of a VPN is "required" to "increase" Internet acces security while not realizing that you're essentially handing over all your Internet data to an unregulated* organization. And to add insult to injury: you don't gain extra security, at best you're getting censorship because said VPN organization is more than happy to prevent access to "unwanted" or "dangerous" websites. But... of course without fully explaining what their precise thresholds are. Basically you're paying for censorship, usage of your data and without much gain with regards to security. Even the dreaded Norton antivirus suite would be a better choice in direct comparison!

My personal opinion on the whole VPN nonsense? Fear mongering, no more and no less. Fear sells afterall...

* Unregulated => There's a good reason why ISP's are under heavy scrutiny from governments and bound by strict regulations which ensure that they can't "just" abuse any user data that's at their disposal. This may vary from country to country, sure, but the bottom line is still the same... VPN providers are not held by those same standards.
 
ShelLuser said:
I can't help but wonder if OP is one of those users who is under the impression that the use of a VPN is "required" to "increase" Internet acces security while not realizing that you're essentially handing over all your Internet data to an unregulated* organization. And to add insult to injury: you don't gain extra security, at best you're getting censorship because said VPN organization is more than happy to prevent access to "unwanted" or "dangerous" websites. But... of course without fully explaining what their precise thresholds are. Basically you're paying for censorship, usage of your data and without much gain with regards to security. Even the dreaded Norton antivirus suite would be a better choice in direct comparison!

My personal opinion on the whole VPN nonsense? Fear mongering, no more and no less. Fear sells afterall...

* Unregulated => There's a good reason why ISP's are under heavy scrutiny from governments and bound by strict regulations which ensure that they can't "just" abuse any user data that's at their disposal. This may vary from country to country, sure, but the bottom line is still the same... VPN providers are not held by those same standards.
Click to expand...

The OP asked about self-hosting.
 
Like other mentioned, wireguard. It's the nicest working vpn solution. Faster and easier (no funny certs) compared to openvpn. On iOs/Mac it allows always on, though you can add exceptions e.g. if you are on your home wifi. And server or client also very easily setup on freebsd, of course :)
 
OpenVPN has a mode without certificate authority. But in that mode you use up one UDP port per connection, not to mention the mode is deprecated.
 
You must log in or register to reply here.
Back
Top